Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/M8ddIuf1d7UZFIsgZ2HYUikUDqU.roa
File: M8ddIuf1d7UZFIsgZ2HYUikUDqU.roa (raw, json)
Hash identifier: JADczCSHz4uH9ioCcaDlR2e5wh5q5zREYtW1d7V+HbE=
Subject key identifier: 33:C7:5D:22:E7:F5:77:B5:19:14:8B:20:67:61:D8:52:29:14:0E:A5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A6A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M8ddIuf1d7UZFIsgZ2HYUikUDqU.roa
Signing time: Sun 07 Feb 2021 11:37:45 +0000
ROA not before: Sun 07 Feb 2021 11:37:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 203.69.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2666 (0xa6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=33C75D22E7F577B519148B206761D85229140EA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c5:3f:8f:85:85:92:15:8d:ef:91:8b:45:87:
a9:15:f4:8b:de:d4:5d:9f:1b:b7:50:91:d5:10:68:
65:c5:63:a7:d5:1e:6d:2e:31:be:cb:bb:7b:44:a8:
c4:78:b7:47:95:2a:8e:90:ed:3b:cc:14:6f:15:d8:
1a:db:75:b5:e1:89:20:f1:48:e1:04:7b:d7:27:75:
18:b7:2b:8a:4f:2b:84:9d:12:1f:6a:88:08:bc:41:
8e:26:b1:93:50:c3:10:b0:69:4a:ab:ce:9a:5f:be:
95:b6:2c:89:5f:c3:01:1f:63:51:f3:42:21:d0:c4:
0a:7f:19:b0:4b:18:82:8b:99:2e:0c:86:67:68:9c:
db:bc:d6:83:42:16:08:5d:1a:0e:27:da:d6:49:a4:
61:77:c7:b8:fb:fa:3b:9c:dd:52:43:88:18:ca:50:
04:cd:1a:41:e8:64:d2:c3:c8:08:d5:ec:d2:e0:14:
fb:8b:99:66:fb:53:2d:46:f7:ba:26:2f:30:ae:68:
fc:cc:e8:2f:8b:77:b2:8d:f2:b6:42:3d:1b:c1:d1:
97:92:2d:c7:01:82:aa:aa:d6:e9:24:13:91:dd:94:
03:fe:56:67:b8:c9:0f:33:57:2c:78:d8:c7:a4:01:
19:b0:1c:81:c5:3f:a1:06:3d:5b:fd:ac:c2:2f:6e:
e1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C7:5D:22:E7:F5:77:B5:19:14:8B:20:67:61:D8:52:29:14:0E:A5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M8ddIuf1d7UZFIsgZ2HYUikUDqU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.141.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:36:b7:31:89:fb:eb:37:b5:8e:4b:31:3f:b3:5b:52:0e:f7:
cf:85:fb:d3:ac:e9:bb:0d:b4:27:05:66:11:b4:a9:4a:96:32:
aa:0a:0d:0e:65:1b:de:d0:23:54:93:9e:35:53:40:5a:f0:8c:
cb:b9:07:b6:ea:eb:03:b3:e5:db:ff:55:98:98:c3:e0:6e:a8:
7e:a1:ed:12:77:af:9f:3c:b4:18:94:31:e6:9f:d7:0d:37:42:
44:97:ed:e9:0b:f0:a9:f3:14:dc:7f:f1:25:93:29:21:52:47:
06:3e:25:87:b6:68:37:f1:f7:a7:d7:cd:ed:d0:f4:50:a5:b3:
a1:67:07:d6:9c:c1:36:67:31:85:66:82:1f:b3:53:86:5f:36:
b3:f2:41:e7:09:e4:86:76:cf:8f:4e:31:06:e2:49:38:07:58:
7a:6a:70:21:46:d0:16:02:bd:60:3e:1c:da:f7:83:d4:15:a4:
4a:a0:82:aa:72:50:3f:a2:bc:a0:18:a0:d9:2a:26:9a:07:a0:
a2:bd:18:1f:e5:ef:ce:c2:a7:d0:94:2d:e2:2a:60:8a:b3:8e:
63:ce:96:60:ef:a7:7a:bd:db:95:d7:18:39:7a:1a:28:c7:ec:
d6:c6:0c:09:f8:b2:f2:ae:0c:0c:2e:08:de:c8:42:46:cf:7b:
4d:d1:38:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org